The WordPress 4.0.1 security update has been released today, which addresses 8 security flaws including cross-site scripting (XSS) and denial of service exploits. In addition, 23 bugs in the 4.0 release have been fixed.

It is highly recommended that anyone running WordPress have their installations updated as soon as possible.

Microsoft issued sixteen security bulletins for various products that’s then translated into fourteen patches, including a fix to a critical Schannel vulnerability (MS14-066) which could allow remote execution if an attacker sends specially crafted packets to a Windows Server (there is however currently no public exploit for this). Adobe has released multiple security hotfixes for Adobe Flash Player and Adobe Air.